mirror/php-flarum
1
0
Fork 0
mirror of https://github.com/flarum/core.git synced 2025-07-25 18:51:40 +02:00
Code Issues Releases Wiki Activity
Files
d7a5a6ad14c351d402442daa93eb8cc871f110ef
php-flarum/src/Forum/Controller/SavePasswordController.php
Matt Kilgore d7a5a6ad14 Change Zend namespace to Laminas (#1963) 
Also ensure backwards compatibility for extensions that use the Zend framework but don't explicitly require it.
2020-01-06 22:29:34 +01:00

107 lines
3.0 KiB
PHP
Raw Blame History

<?php
/*
* This file is part of Flarum.
*
* For detailed copyright and license information, please view the
* LICENSE file that was distributed with this source code.
*/
namespace Flarum\Forum\Controller;
use Flarum\Foundation\DispatchEventsTrait;
use Flarum\Http\SessionAuthenticator;
use Flarum\Http\UrlGenerator;
use Flarum\User\PasswordToken;
use Flarum\User\UserValidator;
use Illuminate\Contracts\Events\Dispatcher;
use Illuminate\Contracts\Validation\Factory;
use Illuminate\Support\Arr;
use Illuminate\Support\MessageBag;
use Illuminate\Validation\ValidationException;
use Laminas\Diactoros\Response\RedirectResponse;
use Psr\Http\Message\ResponseInterface;
use Psr\Http\Message\ServerRequestInterface as Request;
use Psr\Http\Server\RequestHandlerInterface;
class SavePasswordController implements RequestHandlerInterface
{
use DispatchEventsTrait;
/**
* @var UrlGenerator
*/
protected $url;
/**
* @var \Flarum\User\UserValidator
*/
protected $validator;
/**
* @var SessionAuthenticator
*/
protected $authenticator;
/**
* @var Factory
*/
protected $validatorFactory;
/**
* @param UrlGenerator $url
* @param SessionAuthenticator $authenticator
* @param UserValidator $validator
* @param Factory $validatorFactory
*/
public function __construct(UrlGenerator $url, SessionAuthenticator $authenticator, UserValidator $validator, Factory $validatorFactory, Dispatcher $events)
{
$this->url = $url;
$this->authenticator = $authenticator;
$this->validator = $validator;
$this->validatorFactory = $validatorFactory;
$this->events = $events;
}
/**
* @param Request $request
* @return ResponseInterface
*/
public function handle(Request $request): ResponseInterface
{
$input = $request->getParsedBody();
$token = PasswordToken::findOrFail(Arr::get($input, 'passwordToken'));
$password = Arr::get($input, 'password');
try {
// todo: probably shouldn't use the user validator for this,
// passwords should be validated separately
$this->validator->assertValid(compact('password'));
$validator = $this->validatorFactory->make($input, ['password' => 'required|confirmed']);
if ($validator->fails()) {
throw new ValidationException($validator);
}
} catch (ValidationException $e) {
$request->getAttribute('session')->put('errors', new MessageBag($e->errors()));
return new RedirectResponse($this->url->to('forum')->route('resetPassword', ['token' => $token->token]));
}
$token->user->changePassword($password);
$token->user->save();
$this->dispatchEventsFor($token->user);
$token->delete();
$session = $request->getAttribute('session');
$this->authenticator->logIn($session, $token->user->id);
return new RedirectResponse($this->url->to('forum')->base());
}
}
Reference in New Issue View Git Blame Copy Permalink